The Cyber Attack Kill Chain: Where Threat Intelligence Can Help

Key Takeaways

  • Many people believe threat intelligence is primarily about identifying attacks before they happen. In reality, it’s much more about raising your organization’s security profile against all incoming attacks.
  • Different types of threat actors select targets in very different ways. As a rule, the more specific their targeting process, the harder it will be to collect threat intelligence at the pre-planning stage.
  • While threat intelligence can add value at every stage of the kill chain, it’s typically in the form of malicious IP/domain/hash lists and post mortem attack analyses.
  • It’s not just about incident response. In order to add maximum value, threat intelligence should be made available across your security function.
  • Without context, threat intelligence quickly becomes unmanageable. Ensure you’re providing your threat analysts with the tools they need to operate effectively.
Before you start gathering threat intelligence, you must answer a simple question: “What am I trying to achieve?”
The obvious answer is “an improved cyber security profile,” but if you really want to maximize your return on investment you’ll need to be much more specific.
Cyber security is a tremendously complex operation, with many moving parts, so in order to be maximally useful your threat intelligence program must deliver intelligence that can be used to mitigate or prevent specific cyber attacks.
But cyber attacks are complex affairs in their own right. It’s not simply a case of picking a target and attacking it, the cyber attack kill chain is an established and often lengthy process, with multiple phases.
In a recent webinar with Recorded Future and Infosecurity Magazine, KPMG’s Cyber Security Operations Manager Konrad Smelkovs covered the cyber attack kill chain in detail, and explained at which points he felt threat intelligence was most valuable.

Threat Actors: An Overview

Before we look at the kill chain, it’s important to have an understanding of threat actor types.In a previous article, we explained how threat actors can be split into four primary types. During the webinar, however, Konrad went a step further and split threat actors into six categories.
Follow this link to read more https://www.recordedfuture.com/cyber-attack-kill-chain/

Comments

Post a Comment

Popular posts from this blog

Best online IoT courses

Image
Internet of things, or IoT, refers to a system of computing and digital devices that are connected to the internet. As the world becomes increasingly digital, everything from coffee machines to cars will become connected. As technology develops and changes it's important to keep your skills up to date. To help, we've compiled a list of useful IoT courses for you to try out this year. Some are free, other are not but they all provide a sturdy foundation in IoT. Here are some of our favorites. 1. Coursera Coursera Provides a range of online IoT courses. From specialisation to general courses, there is a selection available from beginner to advanced levels. These are some of the courses available Industrial IoT on Google Cloud Platform Introduction to architecting smart IoT devices Programming with cloud IoT platforms Users can enrol with Coursera for free.  Read More
Read more

16 best free project management software programs

Image
When building a startup or scaling up a small business, project management is key. Here we offer 16 great project management software tools. Even better, all are free. Read on for the 16 best free project management software programs.  http://www.techworld.com/picture-gallery/startups/10-best-free-project-management-software-programs-3625922/
Read more

How to create an Amazon Alexa skill

Image
http://www.techworld.com/tutorial/apps/how-create-amazon-alexa-skill-3654733/ Alexa   is a 'smart' personal assistant made available to the public by the Amazon Echo in 2015 offering voice-driven applications that can be enabled to provide a whole host of information and run a range of tasks. Amazon offers plenty of skills (voice-enabled apps) ranging from news, travel planners and smart home skills to bedtime stories for children, fun facts and games. Through the Echo, Alexa can perform various tasks such as play music, look up the weather, turn your heating up or down and even (if configured correctly) make you a cup of tea in the morning...well boil the kettle anyway.
Read more